CVE-2021-37616— Null pointer dereference in Exiv2::Internal::resolveLens0x8ff
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-37616
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Null pointer dereference in Exiv2::Internal::resolveLens0x8ff
Source: NVD (National Vulnerability Database)
Vulnerability Description
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A null pointer dereference was found in Exiv2 versions v0.27.4 and earlier. The null pointer dereference is triggered when Exiv2 is used to print the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a crafted image file. Note that this bug is only triggered when printing the interpreted (translated) data, which is a less frequently used Exiv2 operation that requires an extra command line option (`-p t` or `-P t`). The bug is fixed in version v0.27.5.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
空指针解引用
Source: NVD (National Vulnerability Database)
Vulnerability Title
Exiv2 代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Exiv2是Andreas Huggel个人开发者的一套用于管理图像元数据的C++库和命令行应用程序。该产品提供了读取和写入EXIF、IPTC和XMP等多种格式图像元数据的功能。 Exiv2 中存在代码问题漏洞,该漏洞源于产品在打印图片文件时未能检查指针有效性,攻击者可通过特殊的图像文件引发空指针引用进而导致拒绝服务。以下产品及版本受到影响:Exiv2 v0.27.4 版本及之前版本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2021-37616
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-37616
请登录查看更多情报信息。
- https://github.com/Exiv2/exiv2/pull/1758x_refsource_MISC
- https://github.com/Exiv2/exiv2/security/advisories/GHSA-54f7-vvj7-545wx_refsource_CONFIRM
- https://security.gentoo.org/glsa/202312-06vendor-advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UYGDELIFFJWKUU7SO3QATCIXCZJERGAC/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FMDT4PJB7P43WSOM3TRQIY3J33BAFVVE/vendor-advisoryx_refsource_FEDORA
- https://nvd.nist.gov/vuln/detail/CVE-2021-37616
Same Patch Batch · Exiv2 · 2021-08-09 · 11 CVEs total
| CVE-2021-32815 | 5.5 MEDIUM | Denial of service due to assertion failure in crwimage_int.cpp |
| CVE-2021-34334 | 5.5 MEDIUM | Denial of service due to integer overflow in loop counter |
| CVE-2021-37621 | 5.5 MEDIUM | Denial of service due to infinite loop in Image::printIFDStructure |
| CVE-2021-37622 | 5.5 MEDIUM | Denial of service due to infinite loop in JpegBase::printStructure (#1) |
| CVE-2021-37623 | 5.5 MEDIUM | Denial of service due to infinite loop in JpegBase::printStructure (#2) |
| CVE-2021-34335 | 4.7 MEDIUM | Denial of service due to FPE in Exiv2::Internal::resolveLens0xffff |
| CVE-2021-37615 | 4.7 MEDIUM | Null pointer dereference in Exiv2::Internal::resolveLens0x319 |
| CVE-2021-37618 | 4.7 MEDIUM | Out-of-bounds read in Exiv2::Jp2Image::printStructure |
| CVE-2021-37619 | 4.7 MEDIUM | Out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header |
| CVE-2021-37620 | 4.7 MEDIUM | Out-of-bounds read in XmpTextValue::read() |
IV. Related Vulnerabilities
Same product: exiv2
- CVE-2026-25884
Exiv2: Out-of-bounds read in CrwMap::decode0x0805 - CVE-2026-27596
Exiv2: Integer Underflow in LoaderNative::getData() Causes H - CVE-2026-27631
Exiv2: Uncaught exception - cannot create std::vector larger - CVE-2025-55304
Exiv2 has quadratic performance in ICC profile parsing in Jp - CVE-2025-54080
Exiv2 Segmentation Faults in Exiv2::EpsImage::writeMetadata(
Same vendor: Exiv2
- CVE-2026-25884
Exiv2: Out-of-bounds read in CrwMap::decode0x0805 - CVE-2026-27596
Exiv2: Integer Underflow in LoaderNative::getData() Causes H - CVE-2026-27631
Exiv2: Uncaught exception - cannot create std::vector larger - CVE-2025-55304
Exiv2 has quadratic performance in ICC profile parsing in Jp - CVE-2025-54080
Exiv2 Segmentation Faults in Exiv2::EpsImage::writeMetadata(
Same weakness: CWE-476
- CVE-2026-8252
Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer - CVE-2026-7259
Null pointer dereference in php_mb_check_encoding() via mb_e - CVE-2026-7262
NULL pointer dereference in SOAP apache:Map decoder with mis - CVE-2026-42183
Argo Workflows: SSO RBAC Delegation Nil Pointer Dereference - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error
V. Comments for CVE-2021-37616
No comments yet